Skip to main content

D1000 Modem Firmware

1 CVEs product

Monthly

CVE-2016-10372 CRITICAL POC THREAT Emergency

The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 93.1%.

Privilege Escalation D1000 Modem Firmware
NVD
CVSS 3.0
9.8
EPSS
93.1%
Threat
6.3
EPSS 93% 6.3 CVSS 9.8
CRITICAL POC THREAT Emergency

The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 93.1%.

Privilege Escalation D1000 Modem Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy